char *start_ptr;
char *end_ptr;
int input_len;
+ bool saw_high_bit = false;
/* Make sure space remains in fieldvals[] */
if (fieldno >= maxfields)
}
}
c = val & 0377;
+ if (IS_HIGHBIT_SET(c))
+ saw_high_bit = true;
}
break;
case 'x':
}
}
c = val & 0xff;
+ if (IS_HIGHBIT_SET(c))
+ saw_high_bit = true;
}
}
break;
* literally
*/
}
- }
+ }
/* Add c to output string */
*output_ptr++ = c;
/* Terminate attribute value in output area */
*output_ptr++ = '\0';
+ /* If we de-escaped a char with the high bit set, make sure
+ * we still have valid data for the db encoding. Avoid calling strlen
+ * here for the sake of efficiency.
+ */
+ if (saw_high_bit)
+ {
+ char *fld = fieldvals[fieldno];
+ pg_verifymbstr(fld, output_ptr - (fld + 1), false);
+ }
+
/* Check whether raw input matched null marker */
input_len = end_ptr - start_ptr;
if (input_len == cstate->null_print_len &&
bool standard_conforming_strings = false;
static bool warn_on_first_escape;
+static bool saw_high_bit = false;
/*
* literalbuf is used to accumulate literal values when multiple rules
{xqstart} {
warn_on_first_escape = true;
+ saw_high_bit = false;
SET_YYLLOC();
if (standard_conforming_strings)
BEGIN(xq);
}
{xestart} {
warn_on_first_escape = false;
+ saw_high_bit = false;
SET_YYLLOC();
BEGIN(xe);
startlit();
<xq,xe>{quotefail} {
yyless(1);
BEGIN(INITIAL);
+ /* check that the data remains valid if it might have been
+ * made invalid by unescaping any chars.
+ */
+ if (saw_high_bit)
+ pg_verifymbstr(literalbuf, literallen, false);
yylval.str = litbufdup();
return SCONST;
}
check_escape_warning();
addlitchar(c);
+ if (IS_HIGHBIT_SET(c))
+ saw_high_bit = true;
}
<xe>{xehexesc} {
unsigned char c = strtoul(yytext+2, NULL, 16);
check_escape_warning();
addlitchar(c);
+ if (IS_HIGHBIT_SET(c))
+ saw_high_bit = true;
}
<xq,xe>{quotecontinue} {
/* ignore */
static unsigned char
unescape_single_char(unsigned char c)
{
+ /* Normally we wouldn't expect to see \n where n has its high bit set
+ * but we set the flag to check the string if we do get it, so
+ * that this doesn't become a way of getting around the coding validity
+ * checks.
+ */
+ if (IS_HIGHBIT_SET(c))
+ saw_high_bit = true;
+
switch (c)
{
case 'b':
projects / users / bernd / postgres.git / commitdiff